soumnibot | 54c659dbd42344256bdc393e7c9124d9a20ad0b883af35313607e48ca600c712 | Triage

Sharing

General

Target

54c659dbd42344256bdc393e7c9124d9a20ad0b883af35313607e48ca600c712.bin
Size

4.0MB
Sample

241004-1zyx2syemm
MD5

adc98ebee2e24793c911ebd12086b984
SHA1

df27bd4ed20082ef365e0ac68f358a7f6f494261
SHA256

54c659dbd42344256bdc393e7c9124d9a20ad0b883af35313607e48ca600c712
SHA512

6bb77d00147a152529a1b19c9c3fd083dc79b61109966a096f08072fddd041f0ac64492e30618f080b07137138f7f3f3c5613f14210ca12a27bd3c91fcf959e3
SSDEEP

98304:2CmIosMaN1gbgShUxedQQNPk5jSoKKOlpgvZx4MgA17NGjr5nQFd+I:2hsMq1g8ShBxya3ghKA17NEM+I

Score

10^/10

soumnibot android discovery evasion

Malware Config

Targets

- Target
  
  54c659dbd42344256bdc393e7c9124d9a20ad0b883af35313607e48ca600c712.bin
- Size
  
  4.0MB
- MD5
  
  adc98ebee2e24793c911ebd12086b984
- SHA1
  
  df27bd4ed20082ef365e0ac68f358a7f6f494261
- SHA256
  
  54c659dbd42344256bdc393e7c9124d9a20ad0b883af35313607e48ca600c712
- SHA512
  
  6bb77d00147a152529a1b19c9c3fd083dc79b61109966a096f08072fddd041f0ac64492e30618f080b07137138f7f3f3c5613f14210ca12a27bd3c91fcf959e3
- SSDEEP
  
  98304:2CmIosMaN1gbgShUxedQQNPk5jSoKKOlpgvZx4MgA17NGjr5nQFd+I:2hsMq1g8ShBxya3ghKA17NEM+I
Score

6^/10

discovery evasion
- Acquires the wake lock
- Queries information about active data network
  discovery
- Requests disabling of battery optimizations (often used to enable hiding in the background).
  evasion
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

User Evasion

Credential Access

Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion